
REMARKS 

This application has been carefully reviewed in light of the Office Action 
dated July 18, 2003 (Paper No. 8). Claims 1 to 26 have been cancelled, without prejudice 
or disclaimer of subject matter. Claims 27 to 41 have been added, of which Claims 27, 34 
and 41 are the independent claims. Reconsideration and further examination are 
respectfully requested. 

In the Office Action, the specification was objected to for allegedly 
containing grammatical errors, misspellings, and improper page formatting. A substitute 
specification in conformity with 37 C.F.R. § 1.125(b) is enclosed and is accompanied by a 
marked-up copy of the specification showing changes relative to the original specification. 
No new matter has been added. Accordingly, reconsideration and withdrawal of the 
objection to the specification is respectfully requested. 

The drawings were objected to for allegedly having unclear labeling and 
inconsistent references. The Replacement Drawing Sheets, along with Annotated Sheets 
Showing Changes, attached hereto, are believed to attend to such objections. Accordingly, 
withdrawal of the objections to the drawings are respectfully requested. 

Claims 4 to 15 and 19 to 26 were objected for under 37 C.F.R. § 1.75(c) for 
allegedly being in improper form, and Claims 1 to 3 and 17 were objected to for allegedly 
not containing reference to specific figures. Furthermore, Claims 1 to 3 and 16 to 18 were 
rejected under 35 U.S.C. § 102(b) over U.S. Patent No. 5,444,853 (Lentz). As noted 
above, Claims 1 to 26 have been cancelled, without prejudice or disclaimer of subject 
matter, and without conceding the correctness of their objections and rejection. 
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Accordingly, reconsideration and withdrawal of the foregoing claim objections and 
rejections are respectfully requested. 

The present invention generally concerns sharing and controlling access to 
at least one peripheral of a computer system which includes a central processing unit and 
the at least one peripheral which has a physical interface to the central processing unit. A 
request for access is received at an address of a virtual interface, where the address of the 
virtual interface corresponds to the physical interface, and data which is exchanged 
between the central processing unit and the at least one peripheral is received. The 
received data is modified according to at least one predetermined criterion corresponding 
to the address of the virtual interface. 

Thus, among its many features, the present invention provides for at least 
the feature of modifying received data according to at least one predetermined criterion 
corresponding to the address of the virtual interface. 

Referring specifically to the claims, newly added independent Claim 27 
defines a device for sharing and controlling access to at least one peripheral for a computer 
system which includes a central processing unit and the at least one peripheral which has a 
physical interface to the central processing unit. The device comprises request reception 
means for receiving a request for access to an address of a virtual interface, where the 
address of the virtual interface corresponds to the physical interface, and data reception 
means for receiving data exchanged between the central processing unit and the at least one 
peripheral. The device further comprises modification means for modifying the data 
received by the data reception means, according to at least one predetermined criterion 
corresponding to the address of the virtual interface. 
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In a similar manner, newly added independent Claims 34 and 41 
respectively define the present invention in terms of a method and a computer-readable 
medium. 

Lentz discloses a system and method for queuing, control and transfer of 
data between a host processor and a peripheral processor using an architecture and a data 
flow strategy of virtual data structures stored in main memory and hardware under the 
control of the host and peripheral processors. See Lentz, Abstract; col. 3, 11. 38 to 51; and 
Figure 4. Lentz is not seen, however, to teach or disclose the feature of modifying received 
data according to at least one predetermined criterion corresponding to the address of the 
virtual interface. 

Finally, as to a formal matter, the Office Action made no mention of the 
Information Disclosure Statement dated February 21, 2002. However, since the 
Information Disclosure Statement was filed in conformity with the applicable rules and 
guidelines, Applicants assume that it has been entered and considered. Applicants 
therefore request that the Examiner return an initialed copy of the Form PTO-1449 which 
accompanied the February 21, 2002 Information Disclosure Statement. 

Based on the foregoing amendments and remarks, the entire application is 
believed to be in condition for allowance and such action is respectfully requested. 



Applicants 1 undersigned attorney may be reached in our Costa Mesa, 
California office at (714) 540-8700. All correspondence should continue to be directed to 
our below-listed address. 



Respectfully submitted, 




Registration No._ 



FITZPATRICK, CELLA, HARPER & SCINTO 
30 Rockefeller Plaza 
New York, New York 1011 2-2200 
Facsimile: (212) 218-2200 

CA.MAIN 71615 v1 
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Substitute Specification 
(Marked-Up Version) 

BACKGROUND OF THE INVENTION 

Field Of The Invention 

The present invention relates to a computer device, li e s in th e gene r al fi e ld o f 
c o mpute r devices. It concerns and in particular relates to a device for controlling peripherals by 
means of a software application a pp licati o ns executed on a mul t i-application multi-task capable 
computer system. 

Description Of The Related Art 

In current multi-application multi-task capable systems, the applications have 
access to a specific peripheral through [[a]] software layer known as the peripheral driver. This 
The peripheral driver generally offers a operating system a generic or abstract m akes it p ossible 
to expo r t an abstract and gene r ic (for a given ope r ating system) view of a given peripheral. 

On the one hand , by providing an abstract peripheral driver, this abstraction mak e s 
it possible t o simplify the design, development and information-carrying ability of a software 
application is simplified th e applications . Furthermore On th e othe r hand , the communications 
between several applications and the peripheral are centralised and co-ordinated by the peripheral 
driven making d r iver. This mak e s it possible to share a peripheral between several applications, 
whilst while preserving the integrity of the system. 

Using an abstract peripheral driven however. The c o nv e rse is that this abstract 
view o f t he p eri p he r al causes a major handicap in a system where a high performance level is 
necessary, hi addition, having r egard t J'tl irctat fs t racti o n of the pe r ipheral by th e pil ot , 
Specifically, the applications cannot entirely exploit the particular capacities of the peripherals, 
since the applications must conform to the protocol for communication with the driver. The 
applications cannot communicate directly with the peripheral interface. 

In order to attempt to resolve these problems, several isolated solutions have been 

proposed. 

First of all the direct memory access (DMA) mechanism is known, for the transfer 



of data between the central memory and a given peripheral without the intervention of the central 
processing unit (CPU). 

This mechanism DMA allows an application to specify the address of a buffer 
block and the implied size in the next command. 

However, on the one hand, fairly generally, the current peripherals can use an 
address only in physical form (not in virtual form) and, on the other hand, in a multi-application 
system, the operating system sets up a virtual memory management unit (MMU) in order to 
switch more easily between the memory spaces of the applications. 

Because of this, in a standard multi-application system, each request involving a 
direct memory access (DMA) mechanism therefore passes through the operating system (OS) in 
order to convert the virtual addresses supplied by the application into physical addresses which 
can be understood by the peripheral involved. The operating system is once again used. 

A method, described in US Patent 5 659 798 ("Method and system for initiating 
and loading DMA controller registers by using user-level programs 11 , Blumrich) adds a few 
functions functionaliti e s to the operating system and an associated hardware mechanism in order 
to avoid the operating system in programming by DMA direct memo r y access (DMA) . It uses in 
particular an address decoding module inserted on the bus system, and a particular initialization 
initialisation of the virtual space of each application. The application can then directly supply the 
physical addresses and the sizes of the buffers, whilst while guaranteeing the integrity of the 
system. 

This method for preventing access to the operating system is however limited to 
the programming of the di r ect memory acc e ss DMA mechanism, and in no way makes it possible 
to access the programming of the whole of the interface of a peripheral. 

The 120 protocol method has also been utilized, which uses can als o be cited, 
ttstrrg a specific input/output processor (IOP), placed between the central memory and the 
peripherals, and intended to relieve the CPU cent r al unit (CPU) of the processing of the 
interrupts during high-throughput processing processings . 

In this protocol, a software driver is developed which is common to an entire class 
of peripherals (for example all the network interfaces), specific to an operating system. Each 
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peripheral manufacturer in this class then develops a specific software driver which will be 
executed on the IOP. 

There is then found a reduction in the processing of the tasks specific to a 
particular class of peripherals by the operating system. However, this is achieved at the cost of 
an increase in the level of abstraction of the access to the peripherals by the applications (with 
commands controlling a single driver common to an entire class of peripherals). 

SUMMARY OF THE INVENTION 

The problem formulated here is then to provide direct access without abstraction 
to different applications executed on a multi-application multi-task capable system, while whilst 
guaranteeing the integrity of the system. 

The invention relates firstly to a device for sharing and controlling access to 
peripherals for a computer system comprising a CPU cent r al processo r (CPU) and at least one 
input/output peripheral having a physical control interface accessible to the central processor, 
charact e ris e d characterized in that said device hasr has means for the faithful reproduction, in the 
form of a virtual interface, of the physical interface of at least one peripheral, means of 
interception, by said virtual interface, of all the requests and data exchanged between the central 
processor and the peripheral, controlled by a pre-determined application executed in the system, 
means of possible modification of the said requests and data intercepted according to at least one 
pre-determined criterion. 

It will be understood that, through this arrangement, the applications executed on 
the system can access the peripherals directly, without passing through the driving unit, and by 
therefore choosing a level of abstraction of the^commands adapted to their needs. It is then 
possible for each application to s p ecialis e specialize the programming of the peripheral in order 
to best use its performances according to the required result, specific to the said application. 

The creation of a virtual interface reproducing almost identically the physical 
interface of the peripheral makes it possible to carry out access filter functions in read or write 
mode for the peripheral, and therefore to preserve an integrity check for the system (that is to say 
to isolate any error occurring in a particular application without affecting the other applications). 



The virtual interface reproduces a maximum subset of the physical interface. It thus makes it 
possible to exploit in the same way the main functions offered by the peripheral. 

To simplify, this mechanism can be seen as a transposition of the virtual memory 
mechanism to the accesses to the peripherals, with wttht — an additional filtering functionality, 
and a much finer access granularity. 

It should be stated that, in the case of the virtual memory mechanism, the 
granularity of the protected space is called the page (the term known to the person skilled in the 
art), a page being a memory area of 4, 8, 16, 64 or even more kilobytes. A virtual page is spoken 
of when it is seen by the application. A physical page resides in the physical memory of the 
system (RAM) or on the disk. The virtual memory mechanism associates the virtual pages of the 
applications with the physical pages, each virtual page being allocated a set of attributes for 
qualifying the rights of access to the virtual page by the application. In the case of the Pentium, 
for example, a page can be either in read mode only, or in read and execution mode or in read 
and write mode or inaccessible. 

In the laid out mechanism the granularity of the protected entity is the register of 
the physical interface, that is to say 8, 16, 32, 64 or more bits. This elementary entity will be 
called an io-pag e : I/O page. Seen seen from the application the I/O pages io-pages are virtual, and 
seen from the rest of the system the I/O pages io- p ag e s are physical. For example, the DMA 
programming register denoted 135 at Figure 7, which will be described subsequently, is a virtual 
I/O page io-pag e, whilst the register implemented in the physical interface of the interface 
denoted 9a is a physical I/O page io-page denoted 136. As in the virtual memory mechanism, the 
application can be allocated, in its addressing space, a certain number of virtual I/O pages io= 
pages , whose accesses are functionally protected by means of the mechanism presented. It will 
be understood that the virtualisa t ion of|.a virtua l physical interface, composed of a set peculiar to 
the physical registers peripheral, or physical io-pages I/O pages , consists of the association of 
physical io- p ages I/O pages with virtual io-pages I/O pages in the addressable memory space in 
the application. As in the case of the virtual memory, the association of each virtual I/O page io= 
page with its physical I/O page i o -page is allocated attributes allowing control of the integrity of 
the system when there is access to the physical I/O page i o - p age by several applications. This is 
because qualifying each virtual I/O page i o -pag e, these attributes make it possible to modify the 



data read or written by the application through its virtual I/O page io-pagc . In addition to the 
access authorisation rights in read and/or write mode, these attributes contain a bit mask. Each 
data item written by the application in a virtual I/O page io-pag e, enabled by its attributes to be 
modified, is transmitted to the physical I/O page io-pagc passing through the mask. The data 
running over the reverse path, from the physical I/O page i o -pag e to the virtual I/O page i o -page 
of an application, also passes through the mask. 

According to a preferred arrangement, the reproduction means in the form of 
virtual io-pages I/O pages of a physical interface peripheral comprises compris e: 

a virtual memory space reserved for the image of the physical interface, 

peculiar to each application executed by the computer system, containing the virtual io-pag e s I/O 
pages of the application, 

a means for linking the addresses of these virtual memory spaces to the 

physical interface address, containing the physical io-pag e s I/O pages . 

According to a particular embodiment, the interception means comprises comprise 
r[[-]] on the one hand an interface with the bus connected to the central processing unit, and an 
interface with the bus connected to the peripherals, [[-]] on the other hand an address decoding 
means. 

The address decoding means makes it possible to determine which accesses must 
be modified in order to take account of an integrity criterion for the system. 

According to a more particular embodiment, the modification means comprise 
comprises a means of filtering the requests intercepted by the interception means, according to at 
least one criterion stored in a memory means. 

According to an even more particular embodiment, the filtering means is 
incorporated in a modifiable memory dsvicp. > 

According to a first embodiment, in the hardware, the device is composed on the 
one hand of a module inserted between the central processing unit and the peripherals bus and on 
the other hand a software element previously stored in a memory device of the central processing 
unit and executed by the operating system when the system is initialized in ini t ialised . 

The invention relates more generally to a telephone, a photographic apparatus, a 
printer, a scanner, a camera, a computer, a facsimile machine, a television receiver or an 




audio/video player, cha r act e ris e d characterized in that these data processing appliances include a 
device as briefly described above. 

The invention also relates to an information storage means which is removable, 
partially or totally, and which can be read by a computer or a microprocessor storing portions of 
code of a computer program, making it possible to implement the method succinctly described 
above. 

The invention also relates to a computer program product which can be loaded 
into a programmable apparatus, containing portions of code for implementing the steps of the 
method as briefly disclosed above, when the program is executed on a programmable apparatus. 

The description and the drawings which follow will give a better understanding of 
the aims and advantages of the invention. It is clear that this description is given by way of 
example, and is non-limiting has no limitativ e charact e r . 

BRIEF DESCRIPTION OF THE DRAWINGS 

In th e d r awings : 

[[-]] Figure 1 depicts in th e form of is a block diagram depicting a conventional 
computer system, system of a conv e ntional ty pe ; 

[[-]] Figure 2 depicts sch e matically the software architecture executed on the [[a]] 
computer system illustrated in Figure 1. acco r ding to the one depicted in Figure 1; 

[[-]] Figure 3 is a block diagram depicting th e d e picts functionally th e plac e o f th e 
device according to the present invention, inv e ntion in th e c o m p ute r system; 

[[-]] Figure 4 is a block diagram depicting one example of de p ic t s, in functi o nal 
diagram form, a hardware implementation (?f fee present invention, device and method according 
to t h e inven t i o n; 

[[-]] Figure 5 depicts an example of an addressing space in a computer system 
where t h er e r esid e two applications are sharing the same peripheral, peripheral; 

[[-]] Figure 6 is a flow diagram depicting processing according to of an executi o n 
diagram of t he meth o d according to of the present invention, inventi o n; 



[[-]] Figure 7 gives an example of a mechanism used for the direct implementation 
of a DMA engine by the application, without the intervention of the operating system. 

[[-]] Figure 8 depicts a hybrid hardware and software device accordine to an 
alternate embodiment of the present invention, illust r ates, in func t ional diagram form, a variant 
emb o diment o f the hybrid hardwa r e and s o ftwar e type of the device and method acc or ding t o the 
inven t i o n. 

DETAILED DESCRIPTION OF THE PREFERRED EMBODIMENTS 

In general terms, the invention finds is an application normally executed on [[in]] 
a computer system of a conventional type, such as the one illustrated in Figure 1 in the form o f a 
block diag r am . 

Such a computer system has, on a processing board 1, connected together by an 
add re ss and data bus 2r-H a central processing unit (CPU) 3, for example of the Pentium type, 
(registered trade mark of Intel);-2-^ a random access memory RAM (RAM) 4 ; fH a read only 
memory ROM (ROM) 5 ; 4-= a certain number plurality of peripherals [[P]] connected to the 
add r ess and data bus 2 by interfaces P A , including an internal memory P B , these peripherals 
comprising notably : [[-]] a screen 6 with a screen interface 6 A and an internal memor y (not 
shown) , not shown : [[-]] a keyboard 7 with a keyboard interface 7A and an internal memor y (not 
shown) , not sh o wn : [[-]] a CD-ROM drive 8 with a CD-ROM drive interface 8A and an internal 
memory (not shown) which is not shown ; [[-]] a hard disk unit 9 with a hard disk interface 9A 
and an internal memory (not shown) which is no t shown ; [[-]] a network 10 with a network 
interface 10A and an internal memory (not shown) which is not shown ; [[-]] a floppy disk drive 
1 1 with a floppy disk drive interface 1 la an-d an internal memory (not shown) which is n ot 
shown. 

Each of the elements illustrated in Figure 1 is well known to the person skilled in 
the art of information processing systems. These elements , kn o wn pe r se, are therefore not 
described here in any further detail . 

The random access memory 4 stores data from variables and intermediate 
processing results, in memory areas, bearing , in the desc r ipti o n, the same names as the data 




whose values they store. 

The read only memory 5 is adapted to store, for example, in areas whichrfor 
c o nv e ni e nc e , have the same names as the data which they store, storer 

=-thc The operating program of the central processing unit 3 , for example, is 
stored , in an area denoted "program" "program" . 

The central processing unit 3 is adapted to implement the computer peripheral 
access control method which will be disclosed below. 

The invention applies notably with regard to the management of accesses access to 
the peripherals , such as screen 6 and floppy disk drive 11. 6 t o 11 by software applications, that 
is to say in practice with regard to the communication data bus 2 (for example of the PCI type in 
the remainder of the description) between the processor of th e central processing unit 3 on which 
an operating system and applications are executed and the peripherals 6, 7, 8, 9, 10, 11 (the The 
term resource will also be used in the remainder of the description in accordance with current 
usage, in order to designate peripherals p e r ipherals). 

As illustrated by Figure 2, a peripheral interface 31 has both a hardware 
component 30 and a software component 15 hardware part and a softwar e part . 

The hardware component 30 part consists of a "daughter" board, plugged onto the 
main board or integrated into one of the silicon circuits fixed to the main board, for example the 
screen interface 6 A, the network interface 10A, or the disk interface 9 A. 

The associated software component part is a so-call e d p eripheral driver program, 
specific to each peripheral, fo r exampl e h e r e such as a screen driver 6', a network card driver 10 1 
and a hard disk unit driver 9\ These drivers conventionally form part of the operating system 12, 
executed by the cent r al pr o cessing unit CPU 3. 

The software part component 15 of the peripheral interface 31 computer system, 
finally, contains applications, such as for example Internet browser software 13, or video 
animation software 14. These applications 13, 14 are also executed by the operating system 
central processing unit 12 and send many successive requests in read or write mode to the 
different peripherals which they need at a given t ime; time, such as screen 6, network 10, or hard 
disk unit 9. 



These applications are executed in parallel in a multi-application multi-task 
capable system. 

Before describing any further the device and method according to the invention, 
information will be given relating to the computer system peripheral registers. 

In general terms, the peripheral interfaces, such as hard disk interface 9 A. includes 
sets set, like the o ne denoted 9 a in Figure 1, of programming registers for of a peripheral. 
peripheral like the o ne denoted 9 in Figure 1, These programming registers can be divided into 
three groups. The first g r oups : !/ the state registers RE. r egist er s RE : thes e make it possible to 
know the state of the peripheral. For example, they contain information indicating that the 
peripheral has terminated the last request which it has received, or that it is ready to process 
another one. 

This type of state register RE is intended to be solely read by one application, 
without there ever being a write operation by the application in this state register RE. 

2/ the The second programming registers, the p arameter registers RP. RP : th e s e 
r egiste r s RP are accessible to an application 13, 14 both in read and write mode. 

They make it possible to make known to the peripheral 9r-K) the different 
parameters of a request which will follow. For example, these parameters include the cylinder, 
sector and head numbers in the case of a hard disk interface disk c o ntroll e r 9A, or the address of 
writing the next packets when a network card interface 10A is received. 

Neither reading nor writing in these registers RP triggers any particular process 
with regard to the peripheral itself, except the storage of parameters. 

The last programming registers, the 3/ Th e control registers RC RC : Th e s e 
r egis t e r s are generally useful only in writing mode. 

This is because it is by writing m a control register RC that the order of triggering 
a request is transmitted to the peripheral. 

The value transmitted to the peripheral by the writing in this control register can 
contain a last decisive parameter, such as the type of request (transmission request, reception 
request, etc), but the value transmitted may also be arbitrary and, in this case, it is the simple fact 
of writing in such a register RC which triggers the peripheral command. 



The definition of these three types of peripheral register leads logically to the 
definition of protection models which must guarantee the operating system vis-a-vis the 
manipulation of these registers RE, RP, RC by applications 13, 14 . There are then four main 
types of protection: 

(A) Guarantee of the integrity of the data and of the code of the other applications 
in the course of execution. 

Typically, the operating system 12 must guarantee, in the case of access to a 
peripheral [[9]], that an application [[13]] cannot overwrite a memory area (in the random access 
memory 4 of the system) of another application [[14]] when data are received. 

This constraint can be ensured by filtering the memory addresses, or more 
generally the parameters, supplied by the application [[13]] to the peripheral [[9]. 

(B) Guarantee that the manipulation by a given application does not interfere with 
the interaction of the peripheral with the other applications. 

It will be understood that, for example, an application [[13]] must not be able to 
issue a general reset instruction to the peripheral, when other applications [[14]] are not prepared 
for such a reset. 

This constraint may be ensured by filtering the control instructions sent by each 
application 13, 14 . 

(C) Guarantee that the result of the reading of a state register does not cause an 
error in an application. 

It is for example clear that the information indicating that the last request has been 
executed (a bit in a state register RE) must be able to be read only by the application [[13]] 
responsible for this particular request. However, this information must not be read by another 
application [[14]] which has just sent a new-request which has not yet been interpreted by the 
peripheral [[9]]. 

On the other hand, information indicating that the peripheral [[9]] is available and 
ready to process a new command must be accessible to all applications [[13, 14]]. 

The reading of the state registers RE must therefore only be partially filtered. 

(D) Guarantee of correct distribution of the data intended for the different 

applications. 



If an example is taken here of the management of a peripheral of the hard disk 
interface disk contr o ller type 9 A, it is found that, when data are read on a hard disk unit disk 9 by 
an application such as internet browser software 13. the data in a sector are recovered by the 
application [[13]] by reading them one after the other in a specific input/output port of the hard 
disk interface 9A. 

After each reading, the following data item is available on the port. If a second 
application such as video animation software 14 is enabled to read this port, the first application 
[[13]] generating the reading instruction will suffer the loss of at least some of the data which it 
is to read, these data being read by the second application [[14]]. 

For a peripheral of the hard disk interface disk controller typ e 9A, the operating 
system 12 must therefore filter the accesses in read mode to this type of data register. 

The device according to the invention, a general configuration of which in 
hardware implementation form is illustrated in Figure 3, is composed of a module 16 inserted 
logically between the pair formed by the central processing unit 3 and the random access memory 
[[14]] 14 on the one hand and the data bus 2 for the peripherals, such as screen 6. hard disk unit 9 
and network 10 of the peripherals 6, 9, 10, on the other hand (it is a case there in some way of a 
component serving as an interface between the processor and the PCI bus). 

To facilitate an understanding of the remainder of the description, the cache 
memory 17 of the central processing unit 3, connected to the latter by a system bus 18, has also 
been illustrated here. A bridge 19 has also been depicted, for arbitrating and computing accesses 
to the random access memory 4 and which is connected to the said memory by a memory bus 20. 
These components are known per se to the person skilled in the art. 

Functionally, the module 16 described here by way of non-limitativ e non-limiting 
example then includes successively: - an inpatf output (I/O) bus interface 21 connected by the 
input/output bus 35 2 1 to the pair formed by the central processing unit 3 and the m e m or y RAM 4 
by means of the bridge 19, [[-]] a programmable logic unit 22, [[-]] a input/output (I/O) bus 
interface 23 connected to the add r ess and data bus 2. 

The programmable logic unit 22 (for example implemented in the form of an 
ASIC) intercepts all the accesses in read and write mode on certain shared peripherals, and can 
modify the data transferred during these accesses, in accordance with a pre-programmed scheme, 



defined when the computer system is initialized initialised (when the computer system is started 
up), by the operating system 12. 

The programmable logic unit 22 of the module 16 has notably[[: *]] a vector field 
accessible in the physical space of the central processor unit 3 in an area 160 (Figure 5) and 
making it possible to link the addresses of the virtual i o -pag e s I/O pages to the physical i o - p ag c s 
I/O pages . [[•]] a local memory 25 of the module 16 containing notably bit fields 132, 142 
(Figure 5) specifying the filtering patterns for the installed applications 13, 14 . 
It will be understood that the operating system 12 can thus make available to applications 13, 14 , 
specifically modified to take advantage of the invention, a direct access to the peripherals 
connected to the module 16, thus guaranteeing the integrity of the operating system 12 (that is to 
say in particular by satisfying conditions (A) and (D) defined above.). This is explained by the 
fact that all the data passing between the applications 13, 14 and the peripherals pass through the 
programmable logic unit 22. 

More precisely, the programmable logic unit 22 is composed (see Figure 4) of an address 
decoder 24, a local memory 25 and a programmable filter 26, disposed for example on an 
electronic card 27, alongside I/O bus interfaces 21 and 23 the in p ut/out p ut bus int er faces 21, 23 . 

The module 16 [[15]] is inserted in series with the PCI bus (in the case of a bus of the 
PCI type) connected to the random access memory 4. 

The input/output bus interface 21 connected to the central processing unit 3 sends to the 
address decoder 24 the addresses included in the requests sent to the peripherals, in read or write 
mode. According to the address decoded in a request and the direction of transfer (read or write), 
the address decoder 24 selects a filtering pattern in the local memory 25 (said where the local 
memory being initialized initialised by the operating system 12 when the computer system is 
started up). • ^ 

The data item included in the request is sent to the programmable filter 26 connected to 
the local memory 25 and in which the filtering pattern is applied to this data item. This filtering 
pattern indicates to the programmable filter 26 the function to be applied individually to each of 
the bits of the data item. Thus the programmable filter 26 can either leave the bit unchanged, or 
force it to 0, or force it to 1 . 



Each of these filtering patterns constitutes a criterion for checking the integrity of the 

system. 

The modified data item issuing from the programmable filter 26 is then sent to the 
input/output bus interface 23 connected to the data bus 2 of the peripherals and indirectly to the 
peripherals. 

The device according to the invention also has a software part, which supplements the 
hardware part formed by the module 16. 

This software part is necessary for correctly exploiting the functions functionaliti e s of the 
module 16 by means of the applications 13, 14 and the operating system 12. 

To this end, when the system executed on the central processor 3 is initialized initialised , 
the operating system 12 installs, in the virtual memory space 130, 140 (Figure 5) of the 
applications 13, 14 , [[an]] access 133, 143 to the physical address space 170 in a particular 
decoding area 131, 141 of the module 16, referred to as the virtual io-pages I/O pages area. This 
is effected for each application 13, 14 liable to request access in read or write mode to a 
particular peripheral (for example, the hard disk interface disk unit 9A). It should be noted by 
way of clarification that the memory addresses 133 and 143 correspond to the virtual memory 
addresses peculiar to each application, whilst the areas 131 and 141 are visible in the physical 
addressing space for the CPU processor 3. Thus, the virtual io-pages I/O pages of the peripheral 
interface 9 A are situated in the physical m e mory spac e decoding area 131, 141 and in the virtual 
mem or y space 130 of th e application 1 in the area 133, and in the virtual memory spac e 140 of 
th e a p plicati o n 0 in the area 143. 

The size of the virtual io- p ages I/O pages areas 131, 141 is equivalent to the size of the 
memory space occupied normally by the p hysical hard disk interface 9A of the pe r iphe r al hard 
disk unit 9 in question and containing the physical i o - p ages I/O pages . 

The application 13, 14 reads and writes the data exchanged with the physical interface in 
the io-pages I/O pages 131, 141. 

The operating system 12 next initializes initialises , for each application 13, 14 , two 
vector fields 160, 161 of the module 16, specifying the correlation between the addresses of the 
virtual i o -pages I/O pages decoding areas 131, 141 and the addresses of the physical i o -pag e s I/O 
pages of the peripheral 9A. 



Finally, the operating system 12 initializes initialis e s , for each application, an area 133, 
143 in the local memory 25 of the module 16, corresponding respectively to the virtual i o - p ag c s 
I/O page decoding areas 131. 141, with the filtering patterns (the number of filtering patterns 
varying according to the peripherals) to be applied to each access of the application 13, 14 . 

It should be noted that the patterns are partially identical for the peripheral. During the 
filtering, the DMA addresses (the parameters of the requests) are for example filtered differently 
in order to take account of the translation scheme of the virtual addresses/physical addresses of 
each application for the same peripheral. On the other hand the patterns of the control registers 
will potentially be identical. 

By way of clarification Figure 5 then depicts an example of an addressing space in a 
computer system where there reside two applications 13, 14 sharing the same peripheral [[9]]. 

The operating system 12 can gain access, through its virtual space 120, [[-]] on the one 
hand to the vector fields 160, 161 (of the module 16), and to the two bit fields 132, 142 
containing the filtering patterns of the virtual io- pag e s I/O-page decoding area 131, 141 for each 
of the two applications [[13, 14]] (sharing the same peripheral [[9]]) respectively, [[-]] and, on 
the other hand, to the registers contained in the physical interface 9A of the peripheral [[9]]. 

Each application [[13, 14]] has access, through its virtual memory space 130, 140, in 
addition to the central memory normal for its execution (not shown), only to the decoding areas 
s p ecific ar e a 131, 141 decoded by the module 16. 

In Figure 5, the value N corresponds to the size of the physical interface [[9A]] 
accessible to the central processor unit 3. 

The value M corresponds to the size of the bit field necessary for coding all the filter 
corresponding to the physical interface. For example, if the size of the physical interface is 64 
bytes, that is to say 64*8=512 bits, then it ifeich of these 512 physical io- p ag e s I/O pages bits 
that the module 16 must filter. Relying on an example illustrated by Figure 7, each bit can be left 
unchanged, or forced to 1, or forced to 0 . An elementary bit field must therefore have at least 
one of these three behaviours. By coding the behaviour itself in binary form, it occupies 2 bits (4 
values). Finally, the size N necessary for coding all the 512 bit filters is 512*2=1024 bits, that is 
to say 1024/8=128 bytes. 



The value K corresponds to the size of the vector field necessary for describing the 
translation between the addresses of the virtual io-pages I/O pages decoding areas !31. 141 and 
the addresses of the physical io-pag e s I/O pages [[9A]]. Given the high number of possibilities of 
coding the translation means, only the two extremes will be evoked. Specifically, e vok e d : 
- either the translations are fixed and non-modifiable, and, in this case, the size of the vector field 
is 0; or the translation of each virtual I/O page i o -pag e address is described individually. Calling 
the size of the physical address bus (3, 4, 5 bytes or more), q, each vector field then occupies a 
space of K=q*M bytes.. Taking again the example of the interface containing 64 bytes of to- 
pages I/O pages , the size of the vector field therefore occupies on a 32-bit bus (4 bytes) 
4*64=256 bytes. 

With regard to the method of controlling access to the peripherals, it then 
comprises the following steps, illustrated by Figure 6. 

In a first step [[El]] 61, as has just been seen, when the computer system is started 
up, the operating system 12 initializes initialis e s the local memory 25 of the module 16 by 
sending the filtering patterns to it, to be applied to the addresses of the relevant io-pag e s I/O 
pages of the shared peripheral (these filtering patterns previously being recovered from a memory 
of the system in the form of a bit field, for example). 

The module 16 then waits in a step 62 E2 until it receives a request from an 
application 13, 14 for reading or writing at the addresses of the virtual io-pages I/O pages 131, 
141. This request is intended for the shared peripheral [[9]]. 

In the case of a write command coming from the central processing unit 3 (a 
command sent by an application 13, 14 executed by the central processing unit 3), the data item 
is modified in a step 63 [[E3]] in accordance with what has been disclosed. The data item is then 
applied to the add re ss and data bus 2 oil thtrperipherals side in a step 64 [[E4]], via the I/O bus 
interface 23, in order to transmit the data item to the corresponding physical I/O page io- p ag e. 

In the case of a write command on a virtual I/O page io-pag e, the read request is 
transmitted to the peripheral in a step 65 [[E5]] in order to read the corresponding physical I/O 
page io-pag e. Then the device 16 awaits a response from said peripheral in a step 66 [[E6]]. The 
data item to be modified is then the one coming from the data bus 2 on the peripherals side. This 
data item is then modified in a step 67 [[E7]], and then the data item once modified is applied to 
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the processor bus 2' bus of the p r ocesso r 2' at the' level of the central processing unit 3, in a step 
68 [[E8]]. 

In the example already cited in Figure 7, the module is used notably to guarantee 
this integrity when blocks are transferred by the DMA mechanism 102 proposed by the 
peripheral [[9]]. When the application [[13]] is initialized initialised , it requests from the system 
virtual access to the peripheral [[9]], requesting a virtual address area 103 which will be used for 
transferring data, 64 kilobytes in the example. Knowing the physical addresses 105 of the 
transfer area 103 of the application [[13]], the operating system executed on the processor 3 
initializes initialises the filtering pattern of the DMA address register in the bit field 132 
accordingly; knowing that the buffer area 105 of the application [[13]] extends from 
0x0010.0000 (in hexadecimal base) to OxOOlO.FFFF, the filtering pattern must leave bits 0 to 15 
unchanged, force bits 16 to 19 and 21 to 3 1 to 0 and bit 20 to 1 . Thus, whatever the value written 
by the application [[13]] in the DMA register of virtual interface 133, the value sent to the 
physical interface will always be in the area 105 belonging to the application [[13]]. 

It will be understood that a peripherals sharing device has indeed been set up, 
guaranteeing the integrity of the system during accesses in read or write mode from and to the 
peripherals in all types of register in these peripherals. It is clear that the applications must be 
modified to take advantage of direct access to the peripherals which is then offered to them, and 
to be able to send commands without any abstraction, to the closest of the commands which can 
be executed by each peripheral. 

This is a principally hardware device, insofar as, apart from the initialization 
initialisation of the local memory 25 of the module 16 by the operating system 12, the other tasks 
of processing accesses to the peripherals are totally taken over by the module 16 according to a 
hard-wired logic, for example. ' ? 1 

This method makes it possible to obtain protection of the accesses as far as the 
granularity of the bit, since it is capable of monitoring each individual access. In addition, it 
makes it possible to discharge the CPU cycles (of the central processing unit 3) of the operating 
system 12, delegating the check on the data transmitted by the module 16. 

As a variant, the programmable logic unit 22 is inserted in each of the shared 
peripherals, instead of being inserted in the primary PCI interface. 



In a variant embodiment of the hybrid type including both a hardware and 
software device and illustrated by Figure 8, the device is in the form of a more flexible logic, in 
terms of programmability. 

The module 16 then has a local processor 28 and a local memory 25, connected to 
the processor bus 2\ 

In summary, the local processor 28 scrutinises all the accesses of the applications 
13, 14 in read mode and in write mode on the virtual io-pages I/O pages 131, 141 in order to 
cause them to undergo any filtering processing before propagating access directly on the physical 
interface , such as hard disk interface 9A in the decoded areas. 

In this variant, the software part executed by the operating system 12 remains 
identical to that of the hardware implementation disclosed above (Figure 4). 

Likewise, the operating principle remains identical to that disclosed in Figure 6 
and during the description given with reference to this figure. 

It will be understood that, moreover, in addition to fulfilling the main filtering 
function, the presence of a local processor 28 is an opportunity for relieving the central 
processing unit 3 of certain simple tasks, such as the acknowledgement of requests for example. 

According to yet another variant embodiment, purely software this time, the 
device uses the memory management unit (MMU) of the central processing unit 3, known to the 
person skilled in the art. It should be stated that the memory management unit MMU makes it 
possible to associate pages, and therefore virtual addresses, seen by the applications [[13, 14]], 
with physical pages, actually present in the random access memory 4. 

The device is based solely on the use of the memory pagination system present in 
the majority of processors (central processing unit 3) and associated errors. It requires no 
external device to add to the computer systefirL ' 

Redirecting the use of the mechanism for translating virtual pages into physical 
pages, it is then possible to emulate the virtual io- p ages I/O pages mechanism. This is because, 
by treating in a particular manner the exceptions generated by the memory management unit 
MMU during accesses by the applications [[13, 14]] to the virtual io-pages I/O pages addresses 
133, 143, it is possible to control the data read and written by these applications from and to the 
peripherals. 
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Naturally, the present invention is not limited to the details of the embodiments 
described here by way of example, but on the contrary extends to any modifications within the 
capability of the person skilled in the art. 



ABSTRACT 



The invention concerns the sharing and the controlling of access to at least one 
peripheral for a computer system which includes a central processing unit and at the least one 
peripheral which has a physical interface to the central processing unit. Specifically, a request 
for access is received at an address of a virtual interface, where the address of the virtual 
interface corresponds to the physical interface, and data is exchanged between the central 
processing unit and the at least one peripheral is received. The received data is modified 
according to at least one predetermined criterion corresponding to the address of the virtual 
interface. The inventi o n concerns a device for sharing and controlling access to periphe r als fo r a 
com p ut er system comprising a cent r al pr ocess or (3) and at least one in p ut/output pe riphe r al (6, 9, 
10) having a physical control inte r face ( 6 A, 9 A, 10A) acc e ssible to the c e ntral pr o c e ssor (3), 

characterized in that said device has : 

m e ans fo r the faithful rep r oduction, in the form of a virtual int e rface, of the 
physical int e rface o f at least one periphe r al, 

m e ans of interception, by said virtual inte r face, of all the r equests and data 
e xchang e d between the cent r al processing unit (3) and the periphe r al, controlled by a p r e- 
d e t e rmined application executed in th e compute r system, 

m e ans of possible modification of said r equ e sts and data inte r c e pted according to 
at l e ast one p r c-dctermined criterion. 
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